Microsoft Windows Server Antimalware

Microsoft Windows Server Antimalware is a security feature in Windows Server 2016 that protects the operating system against malware such as Trojan horses, spyware, viruses and worms.

Although the tool itself is installed and enabled by default, the user interface must be installed using the Add Roles and Features wizard. The user interface can also be installed using a PowerShell cmdlet.

Microsoft updates antimalware definitions three times a day every day of the week; the Windows Update service must be running to receive the updates.

Windows Server Antimalware delivers automatic exclusions through the regularly scheduled definition update process. Users can opt out of automatic exclusions with a PowerShell command, but this may corrupt data or have a negative impact on the server's performance.

Windows Server Antimalware uses Deployment Image Servicing and Management (DISM) tools to detect which roles are installed on the user's computer. DISM is a command-line tool that is used to service a Windows image.

This was last updated in November 2015

Continue Reading About Microsoft Windows Server Antimalware

Dig Deeper on Windows Server troubleshooting